Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
259241	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

259242	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

259243	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

259244	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

259245	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

259246	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247411	9.8	CRITICAL Network	kone	group_controller_firmware	An issue was discovered on KONE Group Controller (KGC) devices before 4.6.5. Unauthenticated Remote Code Execution is possible through the open HTTP interface by modifying autoexec.bat, aka KONE-01.	CWE-78 OS Command	CVE-2018-15484	2024-11-21 12:50	2018-09-8	Show	GitHub Exploit DB Packet Storm

247412	7.5	HIGH Network	kone	group_controller_firmware	An issue was discovered on KONE Group Controller (KGC) devices before 4.6.5. Denial of Service can occur through the open HTTP interface, aka KONE-04.	CWE-20 Improper Input Validation	CVE-2018-15483	2024-11-21 12:50	2018-09-8	Show	GitHub Exploit DB Packet Storm

247413	9.6	CRITICAL Network	dokuwiki	dokuwiki	CSV Injection (aka Excel Macro Injection or Formula Injection) in /lib/plugins/usermanager/admin.php in DokuWiki 2018-04-22a and earlier allows remote attackers to exfiltrate sensitive data and to ex…	CWE-1236 Improper Neutralization of Formula Elements in a CSV File	CVE-2018-15474	2024-11-21 12:50	2018-09-8	Show	GitHub Exploit DB Packet Storm

247414	6.5	MEDIUM Network	libesedb_project	libesedb	The libesedb_key_append_data function in libesedb_key.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has di…	CWE-125 Out-of-bounds Read	CVE-2018-15161	2024-11-21 12:50	2018-09-1	Show	GitHub Exploit DB Packet Storm

247415	6.5	MEDIUM Network	libesedb_project	libesedb	The libesedb_catalog_definition_read function in libesedb_catalog_definition.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. …	CWE-125 Out-of-bounds Read	CVE-2018-15160	2024-11-21 12:50	2018-09-1	Show	GitHub Exploit DB Packet Storm

247416	6.5	MEDIUM Network	libesedb_project	libesedb	The libesedb_page_read_tags function in libesedb_page.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has di…	CWE-125 Out-of-bounds Read	CVE-2018-15159	2024-11-21 12:50	2018-09-1	Show	GitHub Exploit DB Packet Storm

247417	6.5	MEDIUM Network	libesedb_project	libesedb	The libesedb_page_read_values function in libesedb_page.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has …	CWE-125 Out-of-bounds Read	CVE-2018-15158	2024-11-21 12:50	2018-09-1	Show	GitHub Exploit DB Packet Storm

247418	6.5	MEDIUM Network	libfsclfs_project	libfsclfs	The libfsclfs_block_read function in libfsclfs_block.c in libfsclfs before 2018-07-25 allows remote attackers to cause a heap-based buffer over-read via a crafted clfs file. NOTE: the vendor has disp…	CWE-125 Out-of-bounds Read	CVE-2018-15157	2024-11-21 12:50	2018-09-1	Show	GitHub Exploit DB Packet Storm

247419	8.8	HIGH Network	docker	docker	HandleRequestAsync in Docker for Windows before 18.06.0-ce-rc3-win68 (edge) and before 18.06.0-ce-win72 (stable) deserialized requests over the \\.\pipe\dockerBackend named pipe without verifying the…	CWE-502 Deserialization of Untrusted Data	CVE-2018-15514	2024-11-21 12:50	2018-09-1	Show	GitHub Exploit DB Packet Storm

247420	4.7	MEDIUM Local	trendmicro	officescan_xg	A Named Pipe Request Processing Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro OfficeScan XG (12.0) could allow a local attacker to disclose sensitive information on vulnerabl…	CWE-200 Information Exposure	CVE-2018-15364	2024-11-21 12:50	2018-08-31	Show	GitHub Exploit DB Packet Storm